CVE-2012-5390: condor: privilege escalation via jobs submitted to the standard universe (CONDOR-2012-0003)

Severity: Critical

CVSS Score: 10

The standard universe shadow (condor_shadow.std) component in Condor 7.7.3 through 7.7.6, 7.8.0 before 7.8.5, and 7.9.0 does no properly check privileges, which allows remote attackers to gain privileges via a crafted standard universe job.